IPv6 Privacy Extensions

Status
Not open for further replies.
S

s53zo

Cadet
Joined
Jan 14, 2014
Messages
5
Hello!

Does FreeNAS (build FreeNAS-9.3-STABLE-201506042008) support IPv6 Privacy Extensions?

sysctl net.ipv6.conf.all.use_tempaddr=1
sysctl net.ipv6.conf.default.use_tempaddr=1

like described in
http://ipv6int.net/systems/freebsd-ipv6.html
http://superuser.com/questions/243669/how-to-avoid-exposing-my-mac-address-when-using-ipv6

I want to enable them under System > Tunables and also in jails under Advanced sysclts options.

Everything gets one IPv6 address from stateless autoconfiguration but I would like to use another one for outgoing connection due to privacy reasons.

Regards,
Simon
 
D

dlavigne

Guest
To test a sysctl, you can (and should) try running it from the command line first. Once you are sure it does what you want and does not negatively impact the running of the system, make it permanent by adding it as a Tunable.
 
S

s53zo

Cadet
Joined
Jan 14, 2014
Messages
5
I managed to enable IPv6 Privacy Extension with System > Tunables for FreeNAS base system. Working is it should.

Under jails I am unable to do it. With command line in jail there is no effect. If I put it under sysctls options in jail settings, jail fails to start and is not shown in jls list.

Any idea?
 
D

dlavigne

Guest
Does setting the sysctl from the host using the syntax "jail -m jid=# name.of.sysctl" work? Use jls to get the correct # of the jail.
 
S

s53zo

Cadet
Joined
Jan 14, 2014
Messages
5
No luck.

simon@freenas:~ % jail -m jid=6 command="sysctl net.ipv6.conf.all.use_tempaddr=1"

simon@freenas:~ % jail -m jid=6 net.ipv6.conf.all.use_tempaddr=1
jail: unknown parameter: net.ipv6.conf.all.use_tempaddr

simon@freenas:~ % jail -m jid=6 net.inet6.ip6.use_tempaddr=1
jail: unknown parameter: net.inet6.ip6.use_tempaddr

simon@freenas:~ % jail -m jid=6 command="sysctl net.inet6.ip6.use_tempaddr=1"

Then from inside jail:

root@jail:/ # sysctl -d -a | grep inet6.ip6

net.inet6.ip6.use_tempaddr:

net.inet6.ip6.temppltime:

net.inet6.ip6.tempvltime:

net.inet6.ip6.prefer_tempaddr:
 
D

dlavigne

Guest
This may be because IPv6 support in 9.3 jails is incomplete. Or possibly because those sysctls are not available in FreeBSD 9.3. Do you know offhand when this feature was added to FreeBSD?
 
S

s53zo

Cadet
Joined
Jan 14, 2014
Messages
5
No idea, sorry. I just thought it would be nice to appear with random IP to outside world.
 
Status
Not open for further replies.

Important Announcement for the TrueNAS Community.

The TrueNAS Community has now been moved. This forum will now become READ-ONLY for historical purposes. Please feel free to join us on the new TrueNAS Community Forums.

Related topics on forums.truenas.com for thread: "IPv6 Privacy Extensions"

Similar threads

MauricioU
  • Locked
SOLVED 10Gbe Transfer Speed issue + Guide?
Replies
19
Views
47K
MauricioU
MauricioU
D
Warden to iocage migration script, some quick tips for others!
2
Replies
39
Views
22K
hunter
hunter
C
  • Locked
Reducing power usage with 8.3.0-RELEASE-p1
Replies
4
Views
3K
chupaty77
C
jgreco
  • Sticky
LACP ... friend or foe?
2 3 4 5
Replies
93
Views
82K
NickDaGeek
N
Q
  • Locked
Miredo
Replies
5
Views
1K
qxw
Q
Top